allow to use http in redirect url

author: Valery Sizov <valery@gitlab.com> 2015-01-22 18:39:05 -0800
committer: Valery Sizov <valery@gitlab.com> 2015-01-22 18:39:05 -0800
commit: e36334c77071b565f6d533bc1dcb2ecf78e6b7cc (patch)
tree: 39e2064a23d701200c7b4ae99a2a32ce6c5808ed /config/initializers
parent: 4ade9bf24da50091e3a3fc310ca9070caed19a75 (diff)
download: gitlab-ce-e36334c77071b565f6d533bc1dcb2ecf78e6b7cc.tar.gz
1 files changed, 6 insertions, 0 deletions
diff --git a/config/initializers/doorkeeper.rb b/config/initializers/doorkeeper.rb
index 23d9852725b..4819ab273dc 100644
--- a/config/initializers/doorkeeper.rb
+++ b/config/initializers/doorkeeper.rb
@@ -36,6 +36,12 @@ Doorkeeper.configure do
   # Issue access tokens with refresh token (disabled by default)
   use_refresh_token
 
+  # Forces the usage of the HTTPS protocol in non-native redirect uris (enabled
+  # by default in non-development environments). OAuth2 delegates security in
+  # communication to the HTTPS protocol so it is wise to keep this enabled.
+  #
+  force_ssl_in_redirect_uri false
+
   # Provide support for an owner to be assigned to each registered application (disabled by default)
   # Optional parameter :confirmation => true (default false) if you want to enforce ownership of
   # a registered application
author	Valery Sizov <valery@gitlab.com>	2015-01-22 18:39:05 -0800
committer	Valery Sizov <valery@gitlab.com>	2015-01-22 18:39:05 -0800
commit	e36334c77071b565f6d533bc1dcb2ecf78e6b7cc (patch)
tree	39e2064a23d701200c7b4ae99a2a32ce6c5808ed /config/initializers
parent	4ade9bf24da50091e3a3fc310ca9070caed19a75 (diff)
download	gitlab-ce-e36334c77071b565f6d533bc1dcb2ecf78e6b7cc.tar.gz